DOCKET NO. 2001-0099B 
1/15 



FIG. 1 

100 



MOBILE HOST 






INTERFACE 


^ 107 



105' 



INTERFACE 



CPU ^ 104 



MEMORY 



CDPD 



106 
108 



WLAN 



110 



INTELLIGENT DEVICE 



DOCKET NO. 2001-0099B 



2/15 



FIG, 2 



228 



„ixz 



204 



200 
MOBILE HOST 



VSA CLIENT 



202 



212 

214- 

216 

218 

220- 

222 

224 

226 



REMOTE NETWORK ID 



VSA SERVER NAME AND/OR IP ADDRESS 
(IF VSA SERVER IS UTILIZED) 



230- 
232- 
234- 



LOCAL ACCESS NETWORK ID 



VSA USERNAME (IF VSA SERVER IS 
UTILIZED) 



ENCRYPTED VSA PASSWORD 
(IF "TIME-VARYING OPTION IS ENABLED) 



REMOTE ACCESS METHOD (IPsec. 
MOBILE IP, P D P/RADIUS, BINARY, etc) 



^206 



REMOTE ACCESS GATEWAY NAME AND/OR 
IP ADDRESS 



ENCRYPTED REMOTE ACCESS 
AUTHENTICATION CREDENTIAL 



SYNCHRONIZATION TIME 



NUMBER OF LOCAL ACCESS RECORDS 



1ST LOCAL ACCESS RECORD 



LOCAL ACCESS METHOD (WEB, 
WEP, 802.1X, NONE, BINARY, etc) 



ENCKYPTED LOCAL ACCESS 
AUTHENTICATION CREDENTIAL 



2ND LCCAL ACCESS RECORD 



< 



^ 208 



DOCKET NO. 2001-0099B 



3/15 
FIG. 3 



30n- 



AUTHENTICATION PROCESS 



T 



302 



SUBMIT COMMON PASSWORD AND SELECT ~j 
TARGETED REMOTE NETWORK FROM ACCESS LIST 



I 



304 



F GENERATE VSA PASSWORD AND CALCULATE 



DECRYPTION KEY 



I 



306 H REMOVE COMMON PASSWORD FROM MEMORY j 



308- 



E 



CHECK STORED LOCA!. ACCESS ID AND 
LOCAL ACCESS INFORMATION 




access privilege ? 
TeT 



314- 



DECRYPT AUTHENTICATION CREDENTIAL 0 
STORED ON MOBILE HOST 



316"] 



518 ---^ 



SEND VSA PASSWORD AND AUTHENTICATION 

CRED ENTIAL? T" LOCAL ACC ESS NETWORK 
_ . 

. . AUTHEN1 ICAiT" — _ 

DEMOTE i^R AT LOCAL ACCESS 
NETWORK ? 




324 H 



CONTACT VSA SERVER 
I 



326 SEND VSA USERNAME AND SYNCHRONIZATION TIME I 

rZIL L 71 

328— J SEND UPDATED REMOTE AC CESS PARAMETERS 
y- 0 J UPDATE LOCAL AND REMOTE ACCESS 1 



INFORMATION FOR VSACUEN' 

T ' 



l__ 



ESTABLISH REMOU ACCESS CONNECTION 
WITH REMOTE NETWORK GATEWAY 



DOCKET NO. 2001-0099B 



4/15 



FIG. 4 



--406 





LOCAL ACCESS 
NETWORK 

LOCAL - 
AAA SERVER 



41 C 

V TKiTFRNFT J-^A 



i 



414 




GATEWAY 



405, 

[OFFICE NETWORK 
f 400 



<HC r 



VSA SERVER 



414 

/ 



416^ 

418--; 



V3A USERNAME 



HASHED VS/. PASSWORD 



491 REMOTE ACCESS METHOD (IPsec, 
^ MOBILE IP, PPP/RADHJS, BINARY, etc) 



422 



424- 



425- 



REMOTE ACCESS GATEWAY NAME AND/OR 
IP ADDRESS 



REMOTE ACCESS 
AUTHENTICATION CREDENTIAL 



REMOTE ACCESS MANXMEN! METHOD 
(MANUAL, WEB, BINARY, tic) 



426 



428- 
430- 

432- 
434 



REMOTE ACCESS MANAGEMENT 
AUTHENTICATION CREDENTIAL 



SYNCHRONIZATION TIME 



LAST CONFIRMED SYNCHRONIZATION TIME 



NUMBER OF LOCAL ACCESS 
MANAGEMENT RECORDS 



1st LOCAL ACCESS MANAGEMENT RECORD 



2nd LOCAL ACCESS MANAGEMENT RECORD 




436 

/ 



438* 
440* 
442 

444. 
446- 

448 ^ 



VSA USERNAME 
HASHED VSA PASSWORD 



SYNCHRONIZATION TIME 



LAST CONFIRMED 
SYNCHRONIZATION TIME 



NUMBER OE LOCAL ACCESS 
MANAGEMENT RECOKLS 

1st LOCAL ACCESS 
MANAGEMENT RECORD 



2nd LOCAL ACCESS 
MANAGEMENT RECORD 



DOCKET NO. 2001 -0099b 



5/1 5 



FIG. 5 

500 



LOCAL ACCESS NETWORK ID ^02 



LOCAL ACCESS METHOD (WEB, WEP, 802.1 x, NONE, BINARY, etc) ^50* 



LOCAL ACCESS AUTHENTICATION CREDEN TIAL " 506 

LOCAL ACCESS MANAGEMENT METHOD (MANUAL, WEB, BINARY, etc) ^508 

LOCAL AAA SERVER NAME AND/O R IP ADDRESS ^510 

LOCAL ACCESS MANAGEMENT AUTHENTICATION CREDENHAI ^ 512 



FIG. 6 

600 



REMOTE NETWORK ID 



VSA SERVER mi AND/OR IP ADDRESS 



VSA USERNAME 



VSA PASSWORD 



SYNCHRONIZATION TIME 



NUMBEf. 3F LOCA'. ACCESS RECORDS 



1st LOCAL ACCESS RECORD 



2nd LOCAL ACCESS RECOPD 



DOCKET NO. 2001-0099B 



6/15 



FIG. 7A 



700 A VSA INFORMATION ^UPDAT E PROTOCOL | 



I 



CONSTRUCT VSA INFORMATION 
UPDATE REQUEST MESSAGE Q 

j— 



704 H SEND Q A ND MAC TO~VSA SERVER | 

L __ 

LOOK FOR VSA MANAGEMENT RECORD 



70* < 



TH AT MATCHES VSA USERNAME 

— X " 



" MANAGEMENT 
RECORD FOUND ? 




71 n J RETRIEVE HASHED VSA PASSWORD, 
/1U ^> CALCULATE DECRYPTION KEY K1. DECRYPT 
I SYNC, TIME AND MESSAGE CONTENT 



712 




SEND DENIAL CODE 
TO ''SA CLIENT/MH 



716 



I 3AVI 



INTEGKiTY OF 
MESSAGE VERIFIED ? 



SAVE SYNC, TIME AS LAST CONFIRMED 
TIME iN VSA MANAGEMENT RECORD \ 



1 



I GENERATE RANDOM SEQUENCE ,', 
71P j . ALCUL/T5- ENCRYPTION KE" K2, AND 

' ,u "1 • :O^S< Slid VSA INFCRMATICM 
UPDATE RESPONSE MESSAGE A 



720 A SE?jD A AND M AC TO VSA CLIENT/MH 1 

TC FIG. 7B 



DOCKET NO. 2001 -0099B 



7/15 



FIG. 7B 



FROM JIG. 7A 

Y 




722 H VERIFY RESPONSE CODE J 



724 



DENIAL CODE ? 




NO 



734 



DECRYPT UPDATE RESPONSE] 



MFSSAGL -AVE UPDATE 
INFORMATION INTO 
CORRESPONDING VSA 
ACCESS RECORD ON Mti, 
AND UPr VIE SYNC. TIME 




DELETE CORRESPONDING 
VSA ACCESS RECORD 

on m 



T 



732 



728 

__S_ 



IGNORE 
RESPONSE MESSAGE 



RFSEND VSA 
Ul'DATF REQUESl 
(fiB. 7A) 

— ~s — 

730 



DOCKET NO. 2001-009OB 



1-/15 



-to 

e 

o 
o 

cq 

OQ 




DOCKET NO. 2O01-0099B 
^3/15 



to 

S 
o 

o 

o 



Q LJ-S Z 

S oo -> 
c — i — 

-r ° S z » 

Z Q_ O 3 

3gl 



to 

or: 
',o 



oc 

GO 



co 



CO 
CO 




s 


■ 


1 








L_i_J 
CO 




<o 




Q_ 




CO 
Ul 


CJj> 




cm 


o 


L_i_l 




i5 










CO 

> 





DOCKET NO. 2001-009DP 

15/ 1 5 




This Page is Inserted by IFW Indexing and Scanning 
Operations and is not part of the Official Record 



Defective images within this document are accurate representations of the original 
documents submitted by the applicant. 

Defects in the images include but are not limited to the items checked: 

□ BLACK BORDERS 

□ IMAGE CUT OFF AT TOP, BOTTOM OR SIDES 



UJ FADED TEXT OR DRAWING 

□ BLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR OR BLACK AND WHITE PHOTOGRAPHS 

□ GRAY SCALE DOCUMENTS 

□ LINES OR MARKS ON ORIGINAL DOCUMENT 

□ REFERENCE(S) OR EXHIBIT(S) SUBMITTED ARE POOR QUALITY 

□ OTHER: 



IMAGES ARE BEST AVAILABLE COPY. 
As rescanning these documents will not correct the image 
problems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 



BEST AVAILABLE IMAGES 




